This Privacy Policy explains how PaiChat, Inc. ("PAIchat," "we," "us," or "our") collects, uses, shares, and protects information when you use PAIchat, including the PAIchat mobile application, web experiences, AI agents, integrations, and related services (collectively, the "Service").
This policy is written for the current PAIchat application, including chat, AI assistant, memory, Google Calendar, Gmail, Apple Calendar, location, attachments, phone-call, and related features.
1. Information We Collect
Account and Profile Information
We collect information you provide when you create or update an account, such as your email address, display name, username, profile photo, phone number, authentication identifiers, and account settings.
Messages, Conversations, and Shared Content
We collect and store content you send or receive through the Service, including messages, conversation metadata, group membership, reactions, unread state, photos, attachments, AI prompts, AI responses, rewritten messages, draft cards, route cards, calendar cards, saved places, and other content shared in chat.
AI Assistant, Tool, and Memory Data
When you interact with the AI assistant, we process your prompts, conversation context, tool calls, tool results, and assistant responses. The Service may create memories from your messages or from actions taken by tools so the assistant can provide more personalized responses in future conversations.
Memories may include summaries of preferences, plans, places, events, tasks, phone-call details, or other information you ask the assistant to remember or that is useful to continue a conversation. Memories are scoped to your user ID and may include metadata such as service type, tool name, source, timestamp, and conversation context.
Calendar Information
If you connect a calendar integration, such as Google Calendar or Apple Calendar, we may collect and process calendar information needed to provide calendar features. This may include calendar connection status, OAuth tokens or permission state, calendar email address, time zone, event titles, dates, times, attendees, locations, descriptions, availability, RSVP status, and calendar IDs.
Depending on your request and permissions, the Service may read calendar events, check availability, create events, update events, delete events, or respond to invitations.
Gmail and Email Information
If you connect Gmail or another supported email feature, we may collect and process information needed to provide email features. This may include connection status, OAuth tokens, email address, scopes, message IDs, thread IDs, labels, senders, recipients, subjects, snippets, message bodies, attachments metadata, and draft email content.
Depending on your request and permissions, the Service may list emails, search emails, read email details or threads, summarize inbox content, and prepare draft replies or new email drafts for your review. PAIchat's agent is designed so outgoing Gmail messages are prepared for user review rather than automatically sent by the agent.
Location Information
If you grant location permission or use location features, we may collect and process location data such as coordinates, location timestamps, shared pins, routes, saved places, group location availability, and map-related metadata.
We use location information to provide features such as sharing your location in chat, finding meeting places, creating route cards, and helping chat participants coordinate. Location data may be visible to other chat participants when you choose to share it.
Contacts and Communication Information
If you use contact, invite, phone-call, or messaging features, we may process contact names, phone numbers, email addresses, call objectives, call status, SMS instructions, provider call IDs, transcripts or summaries returned by communication providers, and related metadata.
Device, Usage, and Log Information
We may collect device and technical information such as device type, operating system, app version, IP address, identifiers, crash logs, diagnostic data, performance data, timestamps, feature usage, server logs, and security events.
Information From Third Parties
We may receive information from services you connect or use with PAIchat, such as Google, Apple, Firebase, cloud infrastructure providers, maps and geocoding providers, phone-call providers, email providers, authentication providers, analytics providers, and app stores.
2. How We Use Information
We use information to:
- Provide, operate, maintain, and improve the Service.
- Authenticate users and manage accounts.
- Send, receive, store, display, and sync messages and shared content.
- Power AI assistant features, including summarization, rewriting, planning, search, recommendations, memory retrieval, and tool use.
- Provide calendar, email, location, saved-place, phone-call, SMS, route, digest, and integration features.
- Personalize responses and preserve useful context through memory.
- Prepare drafts and actions for user review.
- Provide notifications, support, troubleshooting, and service communications.
- Detect, prevent, and respond to abuse, fraud, security incidents, policy violations, and technical problems.
- Comply with legal obligations and enforce our Terms of Service.
- Analyze usage and performance to improve reliability and product quality.
3. Google API Data and Limited Use
If you connect Google services, PAIchat's use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
We use Google user data only to provide or improve user-facing features that are visible in PAIchat, such as calendar, Gmail, assistant, draft, digest, search, and personalization features you request.
We do not sell Google user data. We do not use Google user data for advertising, retargeting, personalized ads, credit-worthiness, or lending purposes.
We do not allow humans to read Google user data unless you give us affirmative permission for support or troubleshooting, access is necessary for security or abuse investigation, access is required by law, or the data is aggregated and used for internal operations in accordance with applicable law.
We transfer Google user data only as needed to provide or improve user-facing features with your consent, for security purposes, to comply with law, or as part of a merger, acquisition, or sale of assets after obtaining any consent required by the Google API Services User Data Policy.
4. AI and Model Processing
We use AI models and related infrastructure to process prompts, conversation context, memories, tool outputs, and connected-service data when needed to provide the Service.
We do not use Google user data to train our own general-purpose AI models. Service providers may process data on our behalf to provide model, cloud, safety, observability, and infrastructure services, subject to their applicable contracts and policies.
AI-generated memories and summaries may be imperfect. You can ask us to delete memories or account data as described below.
5. How We Share Information
We may share information in the following ways:
- With conversation participants: messages, shared content, location cards, route cards, attachments, and other items you send in a chat may be visible to participants in that conversation.
- With service providers: we use providers for hosting, databases, authentication, cloud functions, AI models, analytics, crash reporting, communications, maps, geocoding, app distribution, and support.
- With connected integrations: we share information with third-party services when needed to perform actions you request, such as creating calendar events, preparing email drafts, retrieving email or calendar information, generating routes, or initiating phone-call workflows.
- For legal, safety, and security reasons: we may disclose information if we believe it is necessary to comply with law, enforce our terms, protect rights, investigate abuse, or prevent harm.
- In business transfers: information may be transferred in connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, subject to applicable law and required notices or consents.
- With your consent or direction: we may share information when you ask us to or give us permission.
We do not sell your personal information.
6. Retention
We retain information for as long as needed to provide the Service, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and support legitimate business purposes.
Retention periods vary by data type:
- Account and profile information is generally retained while your account is active.
- Messages and shared content are retained until deleted according to product functionality or account deletion processes.
- OAuth tokens and integration metadata are retained while the integration remains connected or as needed for security and audit purposes.
- AI memories are retained until deleted, reset, or no longer needed for the Service.
- Location data is retained as needed to provide location, saved-place, route, and group coordination features.
- Logs and diagnostic data are retained for limited periods unless needed for security, debugging, compliance, or abuse investigation.
When we delete information, some copies may remain in backups or logs for a limited time unless earlier deletion is required by law.
7. Your Choices and Controls
Depending on your account and app build, you may be able to:
- Update your profile information.
- Delete messages, attachments, conversations, or other content.
- Disconnect Google, Gmail, Apple Calendar, or other integrations.
- Revoke permissions through your device settings or third-party account settings.
- Turn off location permissions through your device settings.
- Ask us to delete or reset memories associated with your user ID.
- Request access, correction, deletion, or export of your personal information.
- Delete your account, subject to legal, security, and operational limits.
To make a privacy request, contact us at privacy@paichat.ai. We may need to verify your identity before completing a request.
8. State Privacy Rights
Depending on where you live, you may have rights to access, correct, delete, or receive a copy of personal information, and to opt out of certain processing.
We do not sell personal information. If we ever engage in activity that legally qualifies as "sharing" personal information for cross-context behavioral advertising, we will provide required opt-out controls.
You may exercise applicable rights by contacting privacy@paichat.ai. You may also designate an authorized agent where permitted by law.
9. Security
We use reasonable administrative, technical, and organizational safeguards designed to protect information against unauthorized access, loss, misuse, alteration, and disclosure. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.
You are responsible for keeping your account credentials secure and for using device-level protections such as passcodes or biometric locks where available.
10. Children's Privacy
The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information to us, contact privacy@paichat.ai so we can take appropriate action.
11. International Data Transfers
We may process and store information in the United States and other countries where we or our service providers operate. These countries may have privacy laws different from those in your location. Where required, we use appropriate safeguards for international transfers.
12. Third-Party Links and Services
The Service may include links, cards, integrations, or actions involving third-party services. This Privacy Policy does not apply to third-party services. Review the privacy policies and settings of those services before using them with PAIchat.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If changes are material, we will provide notice as required by law, such as by posting the updated policy, sending an email, or showing an in-app notice.
The updated policy will be effective when posted unless a later effective date is stated. Your continued use of the Service after the effective date means the updated policy applies to your use of the Service.
14. Contact
For questions or privacy requests, contact: